Lucene search
Veracode Vulnerability DatabaseVERACODE:6010HistoryMar 23, 2018 - 2:20 a.m.
Cross-site Scripting (XSS)
2018-03-2302:20:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.001 Low
EPSS
Percentile
34.2%
rails-html-sanitizer is vulnerable to cross-site scripting (XSS) attacks. Attackers can use non-whiltelisted attributes within sanitized output to inject and execute arbitrary webscript.
Related
github
github
rails-html-sanitizer Cross-site Scripting vulnerability
2018-04-26 15:41:10
nessus
nessus
cve
cve
CVE-2018-3741
2018-03-30 19:29:00
osv
osv
rails-html-sanitizer Cross-site Scripting vulnerability
2018-04-26 15:41:10
CVE-2018-3741
2018-03-30 19:29:00
debiancve
debiancve
CVE-2018-3741
2018-03-30 19:29:00
redhatcve
redhatcve
CVE-2018-3741
2018-04-18 10:49:01
cvelist
cvelist
CVE-2018-3741
2018-03-30 19:00:00
hackerone
hackerone
Ruby on Rails: XSS vulnerability in sanitize-method when parsing link's href
2018-03-21 14:57:43
freebsd
freebsd
rails-html-sanitizer -- possible XSS vulnerability
2018-03-22 00:00:00
ubuntucve
ubuntucve
CVE-2018-3741
2018-03-30 00:00:00
prion
prion
Design/Logic Flaw
2018-03-30 19:29:00
nvd
nvd
CVE-2018-3741
2018-03-30 19:29:00
rubygems
rubygems
Revert libxml2 behavior in Nokogiri gem that could cause XSS
2018-03-28 21:00:00
redhat
redhat
kitploit
kitploit